Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2016-6385
HistoryOct 05, 2016 - 8:59 p.m.

CVE-2016-6385

2016-10-0520:59:05
CWE-399
[email protected]
web.nvd.nist.gov

7.8 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

0.003 Low

EPSS

Percentile

69.2%

JSON

Memory leak in the Smart Install client implementation in Cisco IOS 12.2 and 15.0 through 15.2 and IOS XE 3.2 through 3.8 allows remote attackers to cause a denial of service (memory consumption) via crafted image-list parameters, aka Bug ID CSCuy82367.

Affected configurations

NVD
Node
ciscoiosMatch12.2\(35\)ex
OR
ciscoiosMatch12.2\(35\)ex1
OR
ciscoiosMatch12.2\(35\)ex2
OR
ciscoiosMatch12.2\(35\)se
OR
ciscoiosMatch12.2\(35\)se1
OR
ciscoiosMatch12.2\(35\)se2
OR
ciscoiosMatch12.2\(35\)se3
OR
ciscoiosMatch12.2\(35\)se4
OR
ciscoiosMatch12.2\(35\)se5
OR
ciscoiosMatch12.2\(37\)ex
OR
ciscoiosMatch12.2\(37\)ey
OR
ciscoiosMatch12.2\(37\)se
OR
ciscoiosMatch12.2\(37\)se1
OR
ciscoiosMatch12.2\(40\)ex
OR
ciscoiosMatch12.2\(40\)ex1
OR
ciscoiosMatch12.2\(40\)ex2
OR
ciscoiosMatch12.2\(40\)ex3
OR
ciscoiosMatch12.2\(40\)se
OR
ciscoiosMatch12.2\(40\)se1
OR
ciscoiosMatch12.2\(40\)se2
OR
ciscoiosMatch12.2\(44\)ex
OR
ciscoiosMatch12.2\(44\)ex1
OR
ciscoiosMatch12.2\(44\)ey
OR
ciscoiosMatch12.2\(44\)se
OR
ciscoiosMatch12.2\(44\)se1
OR
ciscoiosMatch12.2\(44\)se2
OR
ciscoiosMatch12.2\(44\)se3
OR
ciscoiosMatch12.2\(44\)se4
OR
ciscoiosMatch12.2\(44\)se5
OR
ciscoiosMatch12.2\(44\)se6
OR
ciscoiosMatch12.2\(46\)ex
OR
ciscoiosMatch12.2\(46\)ey
OR
ciscoiosMatch12.2\(46\)se
OR
ciscoiosMatch12.2\(46\)se1
OR
ciscoiosMatch12.2\(46\)se2
OR
ciscoiosMatch12.2\(50\)se
OR
ciscoiosMatch12.2\(50\)se1
OR
ciscoiosMatch12.2\(50\)se2
OR
ciscoiosMatch12.2\(50\)se3
OR
ciscoiosMatch12.2\(50\)se4
OR
ciscoiosMatch12.2\(50\)se5
OR
ciscoiosMatch12.2\(52\)ex
OR
ciscoiosMatch12.2\(52\)ex1
OR
ciscoiosMatch12.2\(52\)se
OR
ciscoiosMatch12.2\(52\)se1
OR
ciscoiosMatch12.2\(53\)ex
OR
ciscoiosMatch12.2\(53\)ey
OR
ciscoiosMatch12.2\(53\)ez
OR
ciscoiosMatch12.2\(53\)se
OR
ciscoiosMatch12.2\(53\)se1
OR
ciscoiosMatch12.2\(53\)se2
OR
ciscoiosMatch12.2\(54\)se
OR
ciscoiosMatch12.2\(55\)ex
OR
ciscoiosMatch12.2\(55\)ex1
OR
ciscoiosMatch12.2\(55\)ex2
OR
ciscoiosMatch12.2\(55\)ex3
OR
ciscoiosMatch12.2\(55\)ey
OR
ciscoiosMatch12.2\(55\)ez
OR
ciscoiosMatch12.2\(55\)se
OR
ciscoiosMatch12.2\(55\)se1
OR
ciscoiosMatch12.2\(55\)se2
OR
ciscoiosMatch12.2\(55\)se3
OR
ciscoiosMatch12.2\(55\)se4
OR
ciscoiosMatch12.2\(55\)se5
OR
ciscoiosMatch12.2\(55\)se6
OR
ciscoiosMatch12.2\(55\)se7
OR
ciscoiosMatch12.2\(55\)se8
OR
ciscoiosMatch12.2\(55\)se9
OR
ciscoiosMatch12.2\(55\)se10
OR
ciscoiosMatch12.2\(58\)ex
OR
ciscoiosMatch12.2\(58\)ey
OR
ciscoiosMatch12.2\(58\)ey1
OR
ciscoiosMatch12.2\(58\)ey2
OR
ciscoiosMatch12.2\(58\)ez
OR
ciscoiosMatch12.2\(58\)se
OR
ciscoiosMatch12.2\(58\)se1
OR
ciscoiosMatch12.2\(58\)se2
OR
ciscoiosMatch12.2\(60\)ez
OR
ciscoiosMatch12.2\(60\)ez1
OR
ciscoiosMatch12.2\(60\)ez2
OR
ciscoiosMatch12.2\(60\)ez3
OR
ciscoiosMatch12.2\(60\)ez4
OR
ciscoiosMatch12.2\(60\)ez5
OR
ciscoiosMatch12.2\(60\)ez6
OR
ciscoiosMatch12.2\(60\)ez7
OR
ciscoiosMatch12.2\(60\)ez8
OR
ciscoiosMatch15.0\(1\)ex
OR
ciscoiosMatch15.0\(1\)ey
OR
ciscoiosMatch15.0\(1\)ey1
OR
ciscoiosMatch15.0\(1\)ey2
OR
ciscoiosMatch15.0\(1\)se
OR
ciscoiosMatch15.0\(1\)se1
OR
ciscoiosMatch15.0\(1\)se2
OR
ciscoiosMatch15.0\(1\)se3
OR
ciscoiosMatch15.0\(2\)eb
OR
ciscoiosMatch15.0\(2\)ec
OR
ciscoiosMatch15.0\(2\)ed
OR
ciscoiosMatch15.0\(2\)ed1
OR
ciscoiosMatch15.0\(2\)eh
OR
ciscoiosMatch15.0\(2\)ej
OR
ciscoiosMatch15.0\(2\)ej1
OR
ciscoiosMatch15.0\(2\)ek
OR
ciscoiosMatch15.0\(2\)ek1
OR
ciscoiosMatch15.0\(2\)ex
OR
ciscoiosMatch15.0\(2\)ex1
OR
ciscoiosMatch15.0\(2\)ex2
OR
ciscoiosMatch15.0\(2\)ex3
OR
ciscoiosMatch15.0\(2\)ex4
OR
ciscoiosMatch15.0\(2\)ex5
OR
ciscoiosMatch15.0\(2\)ex8
OR
ciscoiosMatch15.0\(2\)ex10
OR
ciscoiosMatch15.0\(2\)ey
OR
ciscoiosMatch15.0\(2\)ey1
OR
ciscoiosMatch15.0\(2\)ey2
OR
ciscoiosMatch15.0\(2\)ey3
OR
ciscoiosMatch15.0\(2\)ez
OR
ciscoiosMatch15.0\(2\)se
OR
ciscoiosMatch15.0\(2\)se1
OR
ciscoiosMatch15.0\(2\)se2
OR
ciscoiosMatch15.0\(2\)se3
OR
ciscoiosMatch15.0\(2\)se4
OR
ciscoiosMatch15.0\(2\)se5
OR
ciscoiosMatch15.0\(2\)se6
OR
ciscoiosMatch15.0\(2\)se7
OR
ciscoiosMatch15.0\(2\)se9
OR
ciscoiosMatch15.0\(2a\)ex5
OR
ciscoiosMatch15.0\(2a\)se9
OR
ciscoiosMatch15.1\(2\)sg
OR
ciscoiosMatch15.1\(2\)sg1
OR
ciscoiosMatch15.1\(2\)sg2
OR
ciscoiosMatch15.1\(2\)sg3
OR
ciscoiosMatch15.1\(2\)sg4
OR
ciscoiosMatch15.1\(2\)sg5
OR
ciscoiosMatch15.1\(2\)sg6
OR
ciscoiosMatch15.1\(2\)sg7
OR
ciscoiosMatch15.2\(1\)e
OR
ciscoiosMatch15.2\(1\)e1
OR
ciscoiosMatch15.2\(1\)e2
OR
ciscoiosMatch15.2\(1\)e3
OR
ciscoiosMatch15.2\(1\)ey
OR
ciscoiosMatch15.2\(2\)e
OR
ciscoiosMatch15.2\(2\)e1
OR
ciscoiosMatch15.2\(2\)e2
OR
ciscoiosMatch15.2\(2\)e4
OR
ciscoiosMatch15.2\(2\)eb
OR
ciscoiosMatch15.2\(2\)eb1
OR
ciscoiosMatch15.2\(2\)eb2
OR
ciscoiosMatch15.2\(2a\)e1
OR
ciscoiosMatch15.2\(3\)e
OR
ciscoiosMatch15.2\(3\)e1
OR
ciscoiosMatch15.2\(3\)e2
OR
ciscoiosMatch15.2\(3\)e3
OR
ciscoiosMatch15.2\(3a\)e
OR
ciscoiosMatch15.2\(3m\)e2
OR
ciscoiosMatch15.2\(3m\)e3
OR
ciscoiosMatch15.2\(4\)e
OR
ciscoiosMatch15.2\(4\)e1
OR
ciscoiosMatch15.2\(4m\)e1
OR
ciscoios_xeMatch3.2.0ja
OR
ciscoios_xeMatch3.2.0se
OR
ciscoios_xeMatch3.2.1se
OR
ciscoios_xeMatch3.2.2se
OR
ciscoios_xeMatch3.2.3se
OR
ciscoios_xeMatch3.3.0se
OR
ciscoios_xeMatch3.3.0xo
OR
ciscoios_xeMatch3.3.1se
OR
ciscoios_xeMatch3.3.1xo
OR
ciscoios_xeMatch3.3.2se
OR
ciscoios_xeMatch3.3.2xo
OR
ciscoios_xeMatch3.3.3se
OR
ciscoios_xeMatch3.3.4se
OR
ciscoios_xeMatch3.3.5se
OR
ciscoios_xeMatch3.5.0e
OR
ciscoios_xeMatch3.5.1e
OR
ciscoios_xeMatch3.5.2e
OR
ciscoios_xeMatch3.5.3e
OR
ciscoios_xeMatch3.6.0e
OR
ciscoios_xeMatch3.6.1e
OR
ciscoios_xeMatch3.6.2ae
OR
ciscoios_xeMatch3.6.2e
OR
ciscoios_xeMatch3.6.3e
OR
ciscoios_xeMatch3.6.4e
OR
ciscoios_xeMatch3.7.0e
OR
ciscoios_xeMatch3.7.1e
OR
ciscoios_xeMatch3.7.2e
OR
ciscoios_xeMatch3.7.3e
OR
ciscoios_xeMatch3.7.5e
OR
ciscoios_xeMatch3.8.0e
OR
ciscoios_xeMatch3.8.1e
OR
ciscoios_xeMatch3.8.2e

Related

openvas 2
prion 1
cvelist 1
nessus 2
cve 1
cisco 1
ics 1
openvas
openvas
Cisco IOS XE Software Smart Install Memory Leak Vulnerability
2016-09-29 00:00:00
Cisco IOS Software Smart Install Memory Leak Vulnerability
2016-09-29 00:00:00
prion
prion
Memory corruption
2016-10-05 20:59:00
cvelist
cvelist
CVE-2016-6385
2016-10-05 20:00:00
nessus
nessus
Cisco IOS Smart Install Memory Leak (cisco-sa-20160928-smi)
2019-11-12 00:00:00
Cisco IOS XE Software Smart Install Memory Leak (cisco-sa-20160928-smi)
2019-11-12 00:00:00
cve
cve
CVE-2016-6385
2016-10-05 20:59:05
cisco
cisco
Cisco IOS and IOS XE Software Smart Install Memory Leak Vulnerability
2016-09-28 16:00:00
ics
ics
Rockwell Automation Stratix Denial-of-Service and Memory Leak Vulnerabilities
2016-10-13 12:00:00

7.8 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

0.003 Low

EPSS

Percentile

69.2%

JSON
Related for NVD:CVE-2016-6385
openvas2prion1cvelist1nessus2cve1cisco1ics1